Tasks

  • Provide technical support to global users by addressing security issues promptly and effectively.
  • Utilize various tools and platforms to detect and prevent access to malicious websites and software.
  • Continuously monitor security logs and events using Splunk, and investigate any anomalies in collaboration with other teams.
  • Conduct deep investigations of security threats/incidents and respond to network attack events and assist users with investigations of phishing emails.
  • Execute emergency device locking and data wiping procedures as required.
  • Utilize various tools and platforms to detect and prevent access to malicious websites and software.
  • Stay up-to-date with the latest trends in cybersecurity, including emerging threats, vulnerabilities, and regulatory requirements.
  • Collaborate with the Global team to deliver around-the-clock technical support.
  • Perform other ad-hoc tasks as assigned

Qualifications

  • Bachelor's degree in Computer Science, Information Technology, or a related field.
  • Minimum of 3 years of experience in information security, cybersecurity, or a related field.
  • Experience with SIEM log analysis tools, such as Splunk.
  • Knowledge of security in DNS, DHCP, TCP/IP, Active Directory, and network topologies.
  • Experience with AWS, Azure/O365, and cloud PaaS security.
  • Familiarity with security tools and technologies, including firewalls, intrusion detection systems, encryption technologies, and vulnerability scanners.
  • Excellent analytical and problem-solving skills, with the ability to identify and resolve complex security issues.
  • Strong communication and interpersonal skills, with the ability to present complex security concepts to both technical and non-technical audiences.